Following the latest government health guidelines regarding the Coronavirus we have followed the recommended advice with the majority of our staff now working from home.
Our on-line store remains open and we can be contacted by email or telephone during our standard opening hours. We would politely request that all customers default to contact by email wherever possible.
Last updated May 2018
For the purposes of data protection this policy refers to the 1998 Data Protection Act until 25th May 2018 and thereafter the EU General Data Protection Regulation (GDPR) or any subsequent, and successor, legislation.
Kitchensinksandtaps is the data controller of the personal information we hold about you.
What is personal information?
Personal information, or personal data, refers to any information about an individual from which that person can be identified. It does not refer to anonymous data. Anonymous data is information where any personal identifiers have been removed.
What information do we collect?
How do we use your personal information?
We use this information to make your shopping experience as easy and enjoyable as possible and to comply with legal requirements.
Why do we contact you?
What are your rights?
Right of access - You have the right to obtain confirmation that your data is being processed and request access to your personal data. You can make a request by email to firstname.lastname@example.org, or in writing to:
In the first instance we will provide a copy of the information free of charge. However, we may charge a reasonable administration fee when a request is manifestly unfounded or excessive or to comply with requests for further copies of the same information although this does not mean that we will charge for all subsequent access requests.
We will without delay and within 1 month of your request (subject to extensions in some cases):
We can extend the time to respond by a further two months where requests are complex or numerous. If this is the case, we will inform you of this within one month of the receipt of the request and explain why the extension is necessary.
Data portability – in addition to your access right you can require us to provide a copy of your information that we hold in a commonly used machine-readable format.
Rights of Rectification and Erasure (the right to be forgotten) -You may ask us to correct or remove information you think is inaccurate or no longer necessary.
SSL and encryption
We use the latest secure server technology to ensure your information is protected to the highest standards. We use encryption to safeguard your personal information and only accept orders from web browsers that permit communication through Secure Socket Layer (SSL) technology.
We take all reasonable steps to keep your data safe and secure and to ensure the data is accessed only by those who have a legitimate interest to do so. Unfortunately, the transmission of information via the internet is not completely secure. Although we will do our best to protect your personal data, we cannot guarantee the security of your data transmitted to us. Any transmission is at your own risk. Once we have received your personal data, we will use strict procedures and security features to try to prevent unauthorised access.
Our Payment Service Provider is Sage Pay (formerly Protx) – the largest independent payment service provider (PSP) in the UK and Ireland.
Sage Pay provides a secure payment gateway (Level 1 PCI DSS), processing payments for thousands of online businesses, including ours. It is Sage Pay’s utmost priority to ensure that transaction data is handled in a safe and secure way.
Sage Pay uses a range secure methods such as fraud screening, I.P address blocking and 3D secure. Once on the Sage Pay systems, all sensitive data is secured using the same internationally recognised 256-bit encryption standards.
Sage Pay is PCI DSS (Payment Card Industry Data Security Standard) compliant to the highest level and maintains regular security audits. They are also regularly audited by the banks and banking authorities to ensure that their systems are impenetrable.
Sage Pay is an active member of the PCI Security Standards Council (PCI SSC) that defines card industry global regulation.
In addition, you know that your session is in a secure encrypted environment when you see https:// in the web address, and/or when you see the locked padlock symbol alongside the URL.
So when buying through our site, you can be sure that you are completely protected.